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Data Isolation System and Method 

Field of invention 

5 The present invention relates to data Isolation system and method and refers 
particularly, through not exclusively, to a data Isolation system and method tor at least 
one of software and data: maintenance, back up. recovery, security and privacy 
control, within a computer system or network. 

10 Background to the Invention 

\mh the great advances In semiconductor technologies over the last thirties years, 
computer hardware reliability has increased significanlly. Software installed and used 
on the computer causes more than 80% of computer problems. 

15 

Many computer users are not sufficiently technlcalJy trained to handle a system failure. 
They often need to contact a call center for assistance. This is a Bme consuming and 
costly way of supporting computer systems, as the technical support staff at the call 
center cannot see the probfem. Furthermore, many usere do not have a full or 
20 complete back up regime and therefore are not always able to restore their computer 
system to fiill operational capability. 

There are a number of remote management software applications available. They 
enable an authorized remote computer user to logon to tiie host computer. The 

25 remote computer user will have the ftjil control of, and access rights to, the host 
computer as if operating at the host computer location. Remote software applications 
are good for many applications such as cfistant working. A user can access their 
company computer system from a home computer system over the Intemet However, 
such remote software is not suitable for remote technical support for the system or 

30 software. The computer user should not be required to allow access to their sensitive 
or private data files to unknown third party maintenance staff. 

Problems relating to the reliability of software installed on a computer may be 
classified as being due to: 
35 1 ) instalJation and use of unstable software that leads to a system failure 

2) Installation and use of an unsuitable device driver that leads to a system 
failure; 

3) unintentional deletion of Important system files that leads to a system feilure; 



2 



4) installation and use of software that conflicts with a system dynannic link 
library; 



5 5) attaclcs by computer viruses or hackers that lead to system instability and 
failure; 

6) excessive software Installations that lead to a laiige number of system files. 
This may cause system instability, and slow processing; and 

7) installation and use of various service providers that leads to system Instability 
10 and failure. 

It is often diflicult and time consuming to Identify the cause of any of the above 
problems. Frequently, a skillful technician is required to handle these Issues, which Is 
costly for most small and medium sized companies. Furthermore, some data may be 
15 permanently lost during a system failure leading to financial loss to the company. 

However, it is possible to identify the condition of the computer system-operating 
environment as being in a normal or unstable state. If it Is possible to maintain and 
backup the entire system environment when it is In a normal working condition, it will 
20 be possible to resolve the unstable system condition by restoring the nonmal working 
system environment after detection, prior to. or after system failure. A normal working 
operating environment can then resumed. 

There are many software maintenance, back up and recovery solutions available. In 
25 general, these solutions differ by using various methods to restore the system 
environment However, none are capable of restoring dynamic data files, especially 
those containing user data that was modified between the last back up and the system 
feilure. Some data loss Is Inevitable with known products. Su^ data loss may cause 
significant dIfRculties to the computer user. For example, an address book, stored 
30 email messages, and so forth may be pemnanently lost This Issue becomes more 
significant when the user does not back up or save their data files on a regular basis. 

Summary of the Invention 

35 in one aspect of the present invention there is provided a data Isolation system for 
software and data maintenance, back up and recovery for a computer wherein 
dynamic data files are identified and passed into a hidden partition on a hard disk of 
the computer, the passing being by one or more selected from the group consisting of. 
copying and redirection; and preferably access control and filtering. 
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Automatfc back ups may be made to the dynamic daia files In the hidden partition 
whenever the dynamic data files are accessed and modified. The dynamic data flies 
may include the computer's operating environment so that the computer's operating 
environment can be restored from the dynamic data files in the hidden partition. The 
dynamic data files in the hidden partition may include data up to the time of a failure of 
the computei's system. 

Compression may be used for at least one file of the dynamic data files in the hidden 
partition, and encryption may be used for at least one of the dynamic data files in the 
hidden partition. 



IS 



20 



25 



30 
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The hidden partition and its content may be neither manageable nor accessible by the 
computer's operating system. The dynamic data files in the hidden partition may not 
be accessible by any software application on the computer. Prior to copying the 
dynamic data files into the hidden partition, all software installed on the computer, 
including an operating system for the computer, may be segregated into at least one 
static routine and the dynamic data files, dynamic data files Including system 
configuration files, and user data files. The segregation may comprise categorization. 

All data sent from the operating system to the dynamic data files and ail data sent 
from the dynamic data files to the operating system may be passed to the dynamic 
data files in the hidden parttlon. The dynamic data files in the hidden partition may be 
continuously updated. 

On system recovery, a last back up system environment in the hidden partitton. with 
the copied dynamto data files, may be recovered. The dynamic data files in the 
hidden partition may include all data up to an instant before the recovery process was 
Invoked, and the system environment may include the operaUng system and soflware. 

Upon new software being instelted in the computer, the instellation may be delayed 
until a back up of the existing system environment to the hidden partition is completed 
and. after completion of the back up. the installation is resumed. If system Instability 
or fanure is encountered after the insteitatton or running of the new application, the 
computer system may restore the prevtous opereting environment from the back up 

Upon a new device driver being installed In the computer, the Installation may be 
delayed until a back up of the existing system environment to the hidden partition is 
compteted and. after completion of the back up. the installatton is resumed and. If 



system instability or feilure Is encountered after the Installation or running of the new 
device driver, the computer system may restore the previous operating environment 
from the back up. 

The software application and its dynamic data files may be copied to the hidden 
partition as Independent modulea The dynamic date files in the hidden partition may 
work as active date files for a software applicatton and may be continuously updated. 

The segregating or categorizing of the dynamic date files of may be by use of a data 
isolation technique that consists of one or more of: 

(a) automatic selection of commonly used software application of the primary 
operating system; 

(b) automatic selection of commonly used software appHcatton 

(c) selection of software application by a user of the computer, and 

(d) selection of files or file folders by the user 

For (a), (b) and (c) ail dynamic date files belonging to the software application may be 
autonnatically segregated and stored to the hidden partition. For (d) the selected files 
or all the dynamic data fifes belonging to the selected file folders may be automatically 
segregated and stored to the hidden parfilion. 

An additional I/O driver may be placed between the file system I/O interface and a disk 
driver for access control, intercepting, filtering and re-dlrecting date for the dynamic 
date files in the hidden partition. The access control, intercepting, filterfng and re- 
directing may be by the use of regulatory, matohing, and fulfillment tables. The 
additional I/O driver may be part of one or more oft the disk driver, the file system I/O 
interface, and the operating system. 

The dynamic date files stored in fhe hidden partition may be protected. The dynamic 
date files stored in the hidden partition may be used as active working files and are 
continuously updated. 

A plurality of back-up copies of each dynamic date file In the hidden partition may be 
made in the hidden partition using a first-in-first-out sequence. 

Upon accessing and modifying a working date file, the plurality of back-ups may be 
updated according to a pre-assigned back-up schedule. 
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In another fbnn, the present invention provides a s^fem for managenrtent of access 
to a host computer by a remote computer wherein access by the remote computer is 
in accordance with a software security access policy in the host computer. 

5 The software security access policy may have a file access right and control 
mechanism. The file access right and control mechanism may be used to selectively 
provide protection to selected software application and their respective dynamic data 
files. 



10 The file access right and control mechanism of the host computer by the remote 
computer may be controlled by the host computer and includes: 

(a) selection of software application/programs 

(b) selection of dynamic data files of the software application; 

(c) selection of configuration files; 

15 (d) selection of data file or folder; and 

(e) selecdon of the type of the operation to be performed by the remote 
computer. 

The selected fife, or files belonging to the selected folder, may be automatically given 
20 the access right while any others will be denied access. The file access right and 
control mechanism of the host computer may be pre-determined by a category of the 
remote host computer and different remote computers are gh^en different access 
rfghts for different usage. All flies Including program, configuration and user date may 
be automatically given the access right while all others are denied access. 

25 

The selected software application and their respective dynamic data files may be 
Identified and are located in at least one partition of the primary operating system of 
the host computer. Dynamic data files may be identified and passed into a hidden 
partition on a hard disk of the host computer, the passing being by one or more 
30 selected from the group consisting of: coping and redirection. The host computer may 
use diagnostic utilities to allow remote technical support by the remote computer. 

In a further form the present invention provides a system for providing an external 
bacic up for at least one computer to at least one hidden partition of a centralized back 
35 up server, wherein dynamic data files of the at least one computer are Identified and 
passed into the at least one hidden partition on a hard disk of the central back up 
server, the passing being by one or more selected from the group consisting of: 
coping and redirection. 



The at least one hidden partition of the central bacic up server may be accessed using 
at least one selected from the group consisting of a: LAN, WAN, VPN, Intranet and 
Internet Critical applications and their dynamic data flies may be stored and 
protected in the at least one hidden partition of the central back up server by using 
encryption and are only able to be accessed by authorteed users. 

For both the second and third fomis, the host computer may have an additional I/O 
driver placed between a file system I/O Interface and a disk driver for access control, 
Intercepting, filtering and re-dlrecting data for the dynamic data files, the additional I/O 
driver using a secondary operating system. The access control, intercepting, filtering 
and re-dlrecting may be by the use of regulatory, matching, and fulfillment tables. The 
additional I/O driver may be part of one or more selected from the group consisting oft 
the disk driver, the file system I/O Interface, and the primary operating system. The 
secondary operating system may be different to the primary operating system. 
Preferably, back up uses one of the primary operating system and the secondary 
operating system; and recovery uses to secondary operating system. The remote 
access may be through the secondary operating system. 

The invention In a final aspect also provides a computer usable medium comprising a 
computer program code that is configured to cause a process or to execute one or 
more functions to perform a system as described above. 

All forms of the Invention may be used individually, or In any possible combination. 
Description of the Drawings 

In order that the Invention may be readily understood and put into practical effect, 
there shall now be described by way of non-limitative example only preferred 
embodiments of the present invention, the description being with reference to the 
accompanying Itlustrative drawings in which* 

Figure 1 1s a typical, hard disk structure of a computer system with three partitions; 
Figure 2 is a hard disk structure of a computer system with three partitions and one 
hidden partition; 

Figure 3 is a process flow of calculating the amount of hard disk space required for the 
hidden partition and the availability of free hard disk space; 
Figure 4 is a process flow diagram of constaictlng an empty hidden partition; 
Figure 5 Is a process flow diagram of setting up a data isolation file type table; 



7 



Figure 6 Is a process flow diagram of duplicating the dynamic data files of selected 
software application into the hidden partition; 
Figure 7 is a structure of a regulatory table; 

Figure 8 is a structure of file access system in a typical operating system; 
5 Figure 9 is a detail of file access structure around the enhanced file filter driver 
CFFD-); 

Figure 10 is a process flow diagram of the modified I/O file access operation with FFD 
driver; 

Figure 11 Is an example of reading a dynamic data file In the hidden partition 
10 Figure 12 is an example of writing data into a dynamic data file in the hidden partition; 

Figure 13 is a Illustration of a circular first-in-first-out ("FIFO") operation for an active 

worldng data fife In the hidden partition; 

Figure 14 is a process flow diagram of an original full bacl< up; 

Figure 15 Is an iiiustration of the relationship between the bitmap table and the 
15 memory blocks; 

Figure 16 is an illustration of the modified In/out ("I/O") file access with FFD system 

interception; 

Figure 17 is an illustration of the structure of the file modification table; 
Figure 18 is a process fiow diagram of an incremental bacic up; 
20 Figure 19 is a process flow diagram of a system recovery by using original full back 
up; 

Figure 20 is a process flow diagram of a system recovery by using incremental back 
up; 

Figure 21 is an illustration of an automatic process flow of carrying out a temporary 
25 back up; 

Figure 22 is a process flow diagram of entering into the recovery system through use 
of a hot key; 

Figure 23 illustrates an external back up and remote recovery over a network 

environment; 

30 Figure 24 Is an illustration of an extemai back up and remote recovery over a network 
environment; 

Figure 25 is an illustration of a first remote access control system; and 
Rgure 26 Is an illustration of a second remote access control system. 

35 Description of the Preferred Embodiments 

The first embodiment is a dual operating system environment for a computer system. 
The computer system has a primary operating system used for Its normal working 
environment The operating system may be, for example, a "Windows" operating 
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system of Microsoft Corp. There is provided a separate system as a secondary 
operating system for software and data maintenance, back up and recovery. This 
separate system may be for example, a "Linux" operating system. The data backed 
up may Include the primary operating system and software application. The 
5 secondary operating system may be transparent to a user. The secondary operating 
system Is placed between the primary operating system of the computer and the 
dynamic data files. Therefore, all data passes through the secondary operating 
system of the present Invention. This applies to data from the operating system to the 
dynamic data files, and the data flow from the dynamic data files to the operating 
10 system. 

Depending on the size and availabillty of space on the hard disk In the computer 
system, a hidden partition Is created and used for software and date maintenance, 
back up and restoration. The hidden partition is preferably at least one-third of the 
15 totel hard disk space. For a high-end computer system having multiple hard disks, 
one of the hard disks may be allocated for the exclusive use for software and date 
maintenance, back up and recovery. 

The hard disk may be partitioned into a number of drives for proper maintenance of 
20 the primary operating system, software application, and user date files. Every partition 
starts with a partition teble that defines the boot indicator, partition type, and other 
attributes. For mampie, the partition type defines the type of file system to be used for 
the operating system. With the 'Windows" operating system [Window 98, Window 
2000. Window XPJ, three types of file system namely FAT18, FAT32 and NTFS are 
25 supported. 

There is a special flag named "hidden" In the partition teble. Upon activation by the 
software utility routine, any partition marked "hidden" will no longer be recognized and 
managed by the operating system. The partition Is hidden, and not accessible to the 
30 primary operating system. Data stored in the hidden partition is Isolated and thus 
protected. Furthermore, the presence of the hidden partition will not cause problems 
with the computer systems. 

Figure 1 shovi^ a typteai hard disk partition structure without a hidden partition. The 
35 hard disk 21 0 is partlttoned into three drives named as C, D and E. 

Figure 2 shows a partition structure with a hidden partition 212 for hard disk 210. One 
or more of the nomialiy used partitions C, D and E are reduced in size and the 
balance of the disk space is used for the hidden partition 212. However, the hidden 
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partition 212 is not recognized by the computer's operating system so the total disk 
space recognized by the operating system Is reduced. For example. If hard disk 210 
has a capacity of 1 00 GB. for the embodiment of Figure 1 , the C partition may have 26 
GB. the D partition 26 GB and the E partition 50 GB. Once the hidden partition is 
5 created, the C partition may have 15 GB, the D partition may have 16 GB, the E 
partition may have 35 GB, and the hidden partlton may have 35 GB. Preferably, the 
hidden partition 212 Is at the last part of disk 210. 

In order to construct a hidden partition 212 that has sufficient continuous free memory 
10 space, an initialization process is performed when the software is installed. This is 
shown in Figure 3. A pre-scan of the entire hard disk Is canried out to calculate the 
amount of free hard disk space available for the hidden parUtton 212 (1). The hidden 
partition 212 requires a reasonable amount of free space on the hard disk 210, This 
may be as a percentage of the total capacity of the harxl disk 210. or as a 
15 predetermined minimum amount of hard disk space. If it Is as a percentage, that may 
be a fixed percentage, or may be on a sliding scale depending on the total capacity of 
the hard disk 210. For example, it may be 30% to 36% for a hard disk capacity of 
100GB, but may be only 20% for a hard disk capacity of 1TB. 

20 Assuming ttie hidden partition 212 requires 30% of the total hard disk space, the pre- 
scan detemiines the amount of free space on hard disk 210, as well as the total 
capacity of the hard disk 210. It ttien detemnines the percentage of the capacity of 
hard disk 210 that is free (2). If the available finee hard disk space in percentage tenns 
Is less than the required amount (3) and thus is insufficient, the system will 

25 automaticaiiy halt after the pre-scan and display on the screen of a monitor a message 
that there is insufficient space on hard disk 210 for there to be a hidden partition 212 
(4). If there is sufficient space, the system continues and constructs a hidden partition 
212 (6), preferably at the last memory space of the hard disk. In order to construct a 
sufficient and continuous free memory space for the hidden partition, the system may 

30 rearrange the existing partitions and relocate data files from the hidden partition to 
another partition. 

Upon completion of the pre-scan and detennlnatlon of the capacity of hard disk 210, 
an empty hidden partitton 212 is constructed. The hidden partition can not be 
35 accessed by the primary operating system. Figure 4 shows the detailed flow of 
constructing an empty hidden partition. As can be seen, after the relevant software Is 
Installed (6), the master boot routine modified and the boot routine duplicated (7), the 
computer system is rebooted, the attributes of the hidden file are accessed, the 
exIsUng partitions are rearranged, and the hidden partition created (8), The 
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modifications to the master boot routine ("IWBR") set the hidden partition operating 
system as the acHve partition for next boot up. This will be automatically executed by 
the secondary operating system. The master boot routine is again modified and the 
recovery system Installed (9). The master boot routine is automatically modified and 
returned to the normal active partition that operates under the primary operating 
system for the next boot up. A SO-second detection of the hot key sequence is 
inserted after the BIOS check sequence of the normal boot routine. The recovery 
system environment is entered, all files are duplicated Into the hidden partition, and an 
entry point In the hidden partition is created for entry (10). The entire operating 
system is then backed up as are aU dynamk: data files according to the data isolation 
file table (11). The computer is rebooted and the normal operating system 
environment entered (12). The fite filter driver ("FFD") is ihsteUed and the operating 
system returns to normal (13). 

To Identify dynamic date files vvlthin the operating system, the software Inventory of 
the computer is obteined. Dynamic date files may include system or sofiware 
configuration fites. and user date fites. After collecUng the software inventory of the 
computer, the dynamic date fites detennined from the Inventory and are backed up 
into the hidden partition. 



Preferably, all the i/O operations in the system are monitored. Any I/O operation to 
access the dynamic date files will be redirected to the active working dynamic date 
files in the hidden partition. As a result, the active working copy of the dynamic date 
files Is copied from the original document files on the hard disk to the duplicated 
document files in the hidden partition during instellation of the secondary operating 
^^m. Furtherniore, the secondary operating system will automatteally perform a 
back up to the duplteated dynamte active woridng date fites in the hidden parfiUon 
whenever and as the files are modified. 



To create a user date isolatton file type table the process flow of Figure 5 is followed. 
Due to differences In hardware and operating systems, and also users' different use 
requirements, which of the software appik»tton and their respective date fites are 
importent to different users will vary. As such, a method of identifying and separating 
the dynamic date files of the important sofiware application files ia used. This may 
include one or more of four ways: 

(a) Through analysis and segregating the common applicafions of the operating 
system. The most commonly used applications of a "Windows" operating 
system are set out in Tedsle 1 . 
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TVpe 


Definition 


Characteristic 


status 


Address 
book 


Address book 
of Window OS 


These files f.WAB) are stored In a 
specific place of the operating system. 
Users go through the registry to obtain 
its location. 


Very important 


Email 


Emails in 

Outlook 

Express 


By default, it is stored in the operating 
system. When a system failure occurs, 
all email is lost. User goes through the 
registry to obtain Its location. 


Very important 
(some users may 
use other email 
software) 


Favorites 


Store the 
t)ookmarks of 
user's favorite 
URU. 


By default, It is stored in the operating 
system. User goes through the registry 
to obtain its location. 


Very important 
(some users may 
use other 
explorers) 


My 

Document 


System 
de^utt file 
directory. It 
includes My 
Music, My 
Picture, and 
etc. 


Stored together with the operating 
system. When a system feiilure occurs, 
the flies stored under this directory may 
t>e lost or corrupted. 


Very Important 


My 

Desktop 




Stored together with the operating 
system. When a system failure occurs, 
all the files stored in this directory will 
be lost 


Very important 


Character 
Set 




Stored together with the operating 
system. When a system failure occurs, 
all the data will be lost 


Very Important 


User define 

Character 

Set 




Stored together with the operating 
system. When system failure occurs, all 
datavrill be lost 


Very important 


Cookies 


Store in 
system default 
location. 


Stored together with the Operating 
system. When a system failure occurs, 
all data will be lost 


Very Importent 



Table 1 



(b) Through analysis and segregating the commonly used software application. 
The most commonly used applications are In Table 2. 
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Type 


Application 


Characteristic 


Status 


Word Processing 


MS Word 


This is the most commonly used word 
processing software. It supports the .doc, 
.rtf and .dot formats. 


Very 

important 




Ivoifd 
Perfect 


It supports the .wpd and .doc fonnats. 


Nonfnal 


Spreacfsheet 


MS Excel 


This is the most popular spreadsheet 
software in MS Office. Its fHe extension is 
.xl*. 


Very 

important 


Electronic Email 


MS Outlool^ 


It Is the most popular email system In MS 
Office. Its file extension is .pst 


Very 

important 




Lotus 
cc:Mail 


A popular email system mainly used In 
offices 


Normal 


Database 


MS Access 


This is the database software in MS Office. 
Its file extension is mdb. 


Very 
important 


Utilities 


Winzip 


This is the most popular data compression 
software. It supports .zip, .arj and etc 
formats. 


Very 

important 




McAfee's 
Anti-Virus 


Popular antf-vlrus software. 


Normal 




Norton's 
Anti-Virus 


Very popular antl-vinis software. 


Normal 


WebPsige 
Development & 
Browsers 


MS Internet 
Explorer 


Very popular Internet explorer, it supports 
htm, html, xml, asp and etc formats. 


Normal 


Netscape 


Popular Internet explorer. It supports htm, 
html, jsp and etc fonnats. 


Normal 




MS 

FrontPage 


Popular html produce toot. It supports htm, 
html and asp formats. 


Normal 


Personal 
uommunications 


MSN 

Messenger 








Yafioo 
Messenger 








ICQ 








AOL Instant 
Messenger 







Tabre2 
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(c) Through analysis and segregating unknown software application. For 
software appfication not listed in Table 2, the software registration table Is 
checked to detennine any such unknown software application and its 
respective data for data isolation. 

(d) Through analysis and segregating user-defined data files. The user may 
define data file types, or folders, for protection. This Is shown In Table 3. 



Type 


Definition 


Characteristic 


"Rii 


Single file 


Specific file name 


Particular type of 
files 


All files with this extension. It can distribute in various 
partitions. 


RIe 
Folder 


A specific file 
fbkier 


AH files under this directory will be duplicated into the 
hidden partition. All the subsequent files stored into this 
directory will also automatically be duplicated into the 
hidden partition. 



10 Tables 

As can be seen from Figure 5, after the inventory of the software on the computer is 
conducted (14) and the user's data isolation file type table is created (15) in 
accordance with one or more of (a) to (d) above. As shown, a combination of (a) in 
15 step 16, (b) in step 16. (c) in step 18 and (d) in step ig, is used. The table is then 
constructed (31). 

Upon completion of creation of the empty hidden partition and the user data Isolation 
file type table, a duplicate copy of the data files of the selected software application 

20 will be copied into the hidden partition. Figure 6 shows the detailed process flow of 
this. After accessing the user data isolation file type table (33), the same file structure 
is constructed In the hidden partition (20), A check Is performed (21) and, if 
completed, the construction of the hidden partition is concluded (22). By using the 
same file structure in the hidden partition, links between software stetic routines and 

25 their associated dynamic data files. 

It Is possible to add or delete date file types in the date Isolation file type teble 
especially when there is a change In the user-operating environment The date 
Isotetion file type table Is preferably stored in the hidden partition to prevent comiption. 

30 
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As shown In Figure 5 and described above, there are two types of pre-defined 
applications for data Isolation. One is the pre-defined common applications of the 
operating system - (a) as described above. The other is the pre-defined common 
software application - (b) as described above. They may be the same. During 
5 installation of the software and data maintenance, back up and recovery system, the 
system will automatically analysis the user operating and software environment, and 
use the pre-defined user data isolation file type table for data Isolation. Subsets (a) 
and (b) of the data Isolation file type tables may be used to determine data In 
commonly used applications of operating systems and software application. 

10 

Through an FFD routine, the system is able to Intercept the I/O file access operation to 
obtain the file attribute and operation of all files loaded into the computer, or being 
sent flnom the computer. This is shown in Table 4. 



Type 


Content 


Remark 


Attribute of file 


Path of file 


E.G. c,\My Document\1.doc 


Name of file 


1.doc 


Extension of file 


Doc 


Sized file 


12.284M 


Modification Time 


2003/3/8 


Read 




Operation of file 


Write 




Modify 




Rename 




Move 




Delete 





Table 4 

(a) Regulatory table 

20 During Installation of the FFD routine, the regulatory table is read and stored. 

Subsequent accessing of the regulatory table is an Internal operation of the 
system to allow a faster system response. Figure 7 shows the structure of the 
regulatory table. For each regulation (23, 24. 25, 26) there is tiie length of the 
regulation (27), matching regulation (28), matching type (29), and fulfillment of 

25 matching (30). 
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(b) Matching regulatory table (28) 

When a file operation is intercepted by FFD routine, the FFD routine will 
5 obtain the attributes of the file and use the attributes to perfomi matching with 

the pre-defined regulatory ^ble. Once a matching is fulfilled, It will execute 
accordingly. Otherwise, it will pass the file access operation back to operating 
system for processing by the operating system. 

10 (c) Fulfillment of matching (30) 

When a matching condition is fulfilled, It wW execute accordingly. This Is 
shown in Table 5. 



Type 


Scope 


Detail 


Re-direction 


Including all the I/O operation 
of this file 


Read/Write, rename, delete, 
move etc attributes. 


Log file 


Record the changes in this file 
to Log file (File Modification 
Table). 


Change time, location, type 
of operation (write, rename, 
delete, move and etc). 


Reservation 


Reservation for future 
expansion 





Tables 



20 (d) Pre-define Data Isolation File Type [commonly used applications of the 
operating system] Reference Table 

According to the user data isolation file type table, the system Is able to pre-determine 
the commonly use applications of the operating system reference table as is shown In 
25 Table 6. 



30 
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No. 


Application 


Matching Regulation 


Action 


Remark 


1 


Address 
Book 


C:\Documents and 
Setting\%UserName%\Application 
Data\Microsoft\Address 
Book\%UserName%.wab 


Re- 
direction 


%UserName% refers 
to the existing 
registered user 


2 


Email 


Can use registry to obtain the 
stored iocafion of ^dbx 


Re- 
direction 




3 


Favorites 


C:\Documents and 
Settings\%UserName%\Favorftes 


Re- 
direction 


%U$erName% refer 
to the existing 
registered user 


4 


My 

Document 


C:\Documents and 
SetHng\%UserName%\ 


Re- 
direction 


%UserName% refers 
to the existing 
registered user 


5 


My Desk 


C:\Documents and 
Settlng\%UserName%\De8k 


Re- 
direction 


%U8erName% refers 
to the existing 
registered user 


6 


Character 
Set 


C:\WINDOWS\Fonts 


Re- 

directton 




7 


User define 

Character 

Set 


Distribute In C:\Document8 and 

Sett^ngs\Administrator^Appllcation 

Data\ 


Re- 
direction 




8 


Cookies 


C:\Documents and 
Sett!ngs\%UserName%\Cookies 


Re- 
direction 


%UserName% refers 
to the existing 
registered user 



Table 6 



5 

(e) Pre-define Data Isolation Rie Type [common software application] Reference 
Table 

According to the User's Data Isolation File Type Table, It is possible to pre-determlne 
10 the common software application reference teble as shown in Table 7. 
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Ma 


Mppiicaiion 


Data file extension 


Aetion 


Remark 


1 
o 


Word 

Processing 


-.DOC.*.RTF.*.DOT 


Re<iirection 






opreacisneet 


*.XL? 


Re-directten 




3 


Electronic Email 


-.PST,... 


Re-direction 




4 


Dateibase 


MMDB ~ — 


Re-direction 




S 


UtiliOes 


-.ZIP;* ARJ,*.RAR. including 
all those files related ant^ 
virus applications 


Re-direction 




6 


Web Paae 

Development 

&Browsers 


• niM, .lifML, .aIWL, .ASP 


Re-direction 


Need to protect all 
tiie related files In 
the active 
partitions. 


7 


Personal 
Communications 


Need special customization 


Re-dlrection 





Table? 



After duplicating the dynamic data files of the selected software application into the 
5 hidden partition, the dynamic data files In the hidden partition are assigned as active 
working flies and are continuously up-dated. An I/O file filter driver (the FFD) may be 
added to the existing operating system to enable this to happen. All the file accesses 
In the operating system will be monitored and Interpreted. 

10 Ail accesses to the dynamic data files in the operating system (those not in the hidden 
partition) will be handled by the operating system in their original location. AB 
accesses to dynamic data files in the hidden partition will be re-directed by the system 
to the hidden parUHon to enable direct access to those files. This re-dlrectlon process 
to access the protected files in the hidden partition is automatic, and is preferably 

15 transparent to the user. The original copy of the dynamic date file on the main hard 
disk is reteined but is, In effect, redundant and serves no useful purpose. 

Rgure 8 shows the file system access structure with the operaHng system application 
32. such as, for exampte. "Windows". MS Dos. and Wii«2 applteatton. Ail software 
20 applteation 32 is operating In the user space. Under the structure in the kernel space, 
an add-in enhanced FFD 36 is inserted between the file system \Ki interface 35 and 
the NT file system. FAT file system. CD-ROiW file system, and so forth. 34. The file 
system 34 instructs and reacts to data from disk driver 37. The FFD 38 is capable of 
monitoring and intercepting all system and user I/O operations including readAwrite. 
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rename, delete, and so forth, to files. The FFD 36 is also capable of selectively 
accepting or rejecting access to files under protective Isolation. This is particularly 
useful in remote file access management Any other IFS drivers (37) are In parallel 
with FFD (36). 

5 

Figure 9 shows the file access structure around the FFD driver. The FFD driver 
Interacts with i/0 file access (39); regulation table (40) Including matching regulation 
(28), matching type (29) and fulfillment of matching (30); file modification table (41); 
and hidden partition access (42). The regulation table (40) interacts with the data 
10 Isolation file type table (38). 

As shown In Figure 10, when the operating system Intends to open an existing file or 
create a new file, this request will be intercept by the FFD that accesses the file (42) 
and obtain the attributes of the file (43). The FFD 36 will Inspect the Intention of this 
15 request and check (44) with the data Isolation type table (45) stored In the hidden 
partition. If the request file or file type is being protected, this I/O operation request 
(39) will be intercepted and handled by FFD (36) by access to the hidden partition (46) 
and thus the files (48). Otherwise, this operation will be handled over to the window 
I/O driver for completion (47). 

20 

Figure 11 shows an example of an attempt to read a protected file named 1.doc, 
Here, upon receipt of the access request (49) the FFD intercepts the request (60) and 
detects the presence of the file in the hidden partition (51), The FFD then accesses 
(52) the file in the hidden partHlon and reads (53) the content of the file In the hidden 
25 partition. 

in Figure 12 there is show an example of an attempt to write a protected file named 
1.doc. Again, upon receipt of the request (64), the FFD intercepts the call (55) and 
detects the presence of the file in the hidden partition (56). The FFD then writes (57) 
30 the date to the file in the hidden partition. 

In the hidden partition, ail the dynamic data files will be backed up whenever they are 
accessed and modified. The back up system virtii maintein up to three back up copies 
of each dynamic date file in the hidden partition in first-ln-first-out (FIFO) sequence. 
35 More back up copies or roil back pdnts for every dynamic date file are possible, but 
would require more memory space reserve for the hidden partition. By default the 
recovery system will use the last back up for recovery. However, it Is also possible for 
a user to select a previous date file back up m the circular FIFO for recovery. For 
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example, to restore a previous data file ttiat has been ovenivritten without a tiaclc up 
being mada 

Figure 13 shows a detaOed FIFO buffer of a dynamic data file in the hidden partition. 
Eveiy data buffer consists of one worlting and three back up data files, in the FIFO, 
the [N] copy of the data file will always contain the up-to-date data file as the working 
data file. Upon accessing and modifying the working data file, the [l^2J copy of the 
FIFO will be updated and have the' same content as the modified working data file 
according to the pre-asslgned back up schedule, this may be set in tenns of weeks, 
days, hours or minutes. This [N-2J copy of the FIFO Is reassigned as the (NJ copy. The 
oW [N] and [N-l] copies become [N-l] and IN-21 copies respectively. 

As mentioned, the use of data isolatton technhfue to the software and data 
maintenance, back up and recovery system is to recover the data lost during a system 
failure. If the system can maintein and backup the entire system environment when it 
Is In a normal vwrklng condition, the system can always resolve an unstable or failed 
system conditton by restoring the nomrtal working system environment after detecHon. 
prior to. or after system failure. A nomnal woridng operating environment is then 
resumed. 

in general, software including operating system and date maintenance, back up and 
recovery condste of two processes as shown in Table 8: 

(1) maintenance and back up of sofiware including operating system and date to 
the protected hMden hard disk partition; and 

(2) recovery and restoring of the software and operating system from the 
protected hidden hard disk partition. 



Three diflSsrent back up types may be supported as shown In Table 8: 



Type 


Usage 


Details 


Original full 
back up 


Conduct an original full 
back up initially. 


Back up a complete copy of the user operating 
system, sofiware and data of the present 
environment in the active partitions into the 
hidden partition according to track format of the 
hard disk. 
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Incremental 
backup 


This Is an Incremental 
back up with reference 
to the original full back 
up. 

It can also Include the 
temporary back up Into 
uiis oacK up IT recfuirea. 


Back up the difTerences (e.g. modified files, 
additional new files and remarked deleted files) 
between the original full back up and the existing 
operating environment Into the hidden partition in 
compressed format 


Temporary 
back up 


This is the latest 
incremental back up of 
the system. 


Back up the differences (e.g. modified files, 
additional new files and remarked deleted files) 
between the last incremental back up and the 
existing operating environment into the hidden 
partition In compressed fbrmat 



Tables 



Upon Installation of the software and data maintenance, back up and recovery system, 
5 an original full back up is perlbnmed. 

As shown In Figure 14, the onginal full back up is based on the block level of the hard 
disk. Before back up, hard disk is scanned (58) to Identify those blocks that contain 
data. A record is created (59), the attributes of the file system and memory block is 
10 accessed (61) and a scan conducted of all active partitions to obtain the existing 
condition of all memory blocks and its bitmap table (62). These blocks are backed-up 
(63). compressed (64) and stored into the hidden partition (65). Empty btocto mM not 
be backed- up. This will greatly improve the efficient usage of the hidden partition. 

15 Rgure 15 shows the relationship between the bitmap table and the memory blocks. 
The bitmap table contains the status every memory block, if the memory contains 
data, its respective bitmap will contain a 1; othenAnse It will contain a 0. 

Incremental back up is operated under the nomnal operating environment of the 
20 computer. It can be invoked either by the intent to carry-out an incremental back up, 
or automatically when the operating system detects that a new software or hardware 
driver being installed. Under incremental back up. the system will back up the 
differences with a special listing record file between the original back up environment 
and the current operating environment the back up will be to the protected hidden 
25 partition. Ail modified and addlOonal document files are backed-up and remarked in 
the special file. All the missing document files are recorded and remarked in the 
special file. 
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As shown in Figure 16. after the original full back up (Figure 14) and entry Into the 
operating system, the add-in FFD will start to monitor and Intercept (67) all the I/O file 
access (66) operation by the operating system. If the access file fs protected in the 
5 hidden parUtlon (88), it will automatically re-direct (69) the access to the hidden 
partition. If the access file Is a system file, It will be (70) handed over to the operating 
system (74) for operation. If the access file is unprotected and classified as neglec^d 
file type (e.g. system swap file, *.tmp files, and so forth) (72). it will record (73) the 
name of this file into the "file modification table" stored in the hidden partition, and 
10 send the file to the operating system for operation. 

File modification table is shown In Figure 17. Through the FFD, ft can obtain the 
information of file changes and then record these changes Into the file modification 
table as follows: 

1 5 (a) type of operation (75): Write, Rename, Delete or Move; 

(b) time of change (76); 

(c) directory path and file name (77); and 

(d) destined directory path and file name (78) (used fbr change path or rename) 

20 As shown In Figure 18, the Incremental back up (79) is based on the changes In the 
file modification table with changes being backed up In compressed format to the 
hidden partition. During the incremental back up, it is required to suspend all system 
operattons (80) until the back up Is completed. The file nnodlfication table is accessed 
(81) and all required files compressed and backed-up (82). 

25 

The temporary back up is the same as the incremental back up. It is always the last 
Incremental back up of the system. 

After installation of new software application or hardware driver that results in 
30 Instability or feilure of the computer system, the recovery process is invoked to restore 
the original stable state. Regardless of which of the three types of back up has been 
previously used, any type of back up can be selected for recovery. 

There are two ways that user can select to restore the normal operating environment 
35 when the computer encounters a system failure : 

(1) use a pre-assigned key such as, fbr example, F12, as a hot key during power 
up to enter into the operating environment directly as shown; 
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(2) to Invoice the recovery process from the operating system and the operating 
system will automatically restart the computer In the recovery operating 
environment 

(3) 

5 In Rgure 19 Is shown the process flow for the system to enter Into the recovery 
system upon detection of hot key pressing during power up. During power up (either 
initially or at restart) (86).. it detects (87) the hot key having been pressed. In the 
recovery system environment, the user can select (88) one of the three types of back 
up system for recovery. During recovery. It will first access the original full back up 

10 (89) in the hidden partition then restore the back up operating system to the active 
partition (90) according to the bitmap table. Then, It will inspect the data isolation type 
table in the hidden partition (81) and check the respective fites In active partitions (92). 
If ft discovera missing files In the active partitions (93), It will copy back the files from 
hidden partition to the respective location in the active partition (94) then restart the 

15 computer (95). If there are no missing files. It proceeds directly to the restart (95). 

In Figure 20 Is shown ttie process flow of restoring the computer system by using an 
Incremental back up. The process flow of restoring the computer system by using the 
Incremental back up, or a temporary back up. is the same. After restarting the 

20 computer (96) eitfier as a reboot or initial start, the pressing of the hot key Is detected 
(97) and Incrementel back up is selected for recovery (98). The file record table of ttie 
flill back up on the hidden partition is accessed (99) and a scan conducted to gatiier 
all file record tebles (100). If there are any missing files from the record teble wRh 
reference to the full back up (101). restoration proceeds from the original full back up 

25 (102). If tfiere are missing files, the file record tebfe of the selected Incrementel back 
up is accessed (103) and the data isolation file type table accessed (104). From that 
teble are extrected those files firom the existing system (105). If there are no missing 
files (108), the computer is restored and ttie normal operating system entered (108). If 
there are missing files, the missing files are copied flrem the hidden partition to ttte 

30 active partition (107). the computer restarted and the nonnal operating system re- 
entered (108). The restoration ends (109). 

Through the system recovery, ttie operating ^tem and software win be recovered 
from the hidden partition and copied to the active partitions white retaining all data In 
35 ite latest status. The nonmal operating system environment Is restored frem the 
previous state, when a system failure occura. 

When using the original full back up for recovery, any previous Incrementel back (up if • 
present) will not be deleted. 
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Many system instabilities or failures are caused by installing an unstable hardware 
driver, or an unsuitable software application. The software and data maintenance, 
back up and recovery system has an automatic mechanism as shown in Figure 21. 
5 Once the system detects the Installation of a new software application or hardware 
driver In the computer system (110), it wHI automatically suspend the installation (111) 
and perfomis a back up of the existing system environment (112). After compleflon of 
the back up (113). it will resume the Installation. Subsequently, If system Instability or 
failure is encountered (114) after the installation or running of the new application, the 
10 computer system can easily restore to the previous operating environment from the 
last back up. 

When the primary operating environment is damaged, it Is still possible to restore the 
operating environment with up-to-date data files system. 

15 

Figure 22 shows the detailed process flow diagram of the hot key Invoking a system 
recovery. 

As mentioned earlier, the master boot routine is automatically modified after ttie 
20 Installation of the software and data maintenance, back up and recovery system. After 
powering up ttie computer (115) the normal power-up sequence of computer system is 
redirected to the recovery system for a predetenrtlned time such as, for example. 30 
seconds after ttie BIOS check routine (116). The system will enter into tiie recovery 
operating environment (121) for system recovery upon detection of the hot key (117, 
25 120). Otheiwfse (118), it will resume the nomrial powered up process and enter into 
the operating system (119) environment 

The software and data maintenance, back up and recovery (n a stand atone computer 
systems may be extended to an external storage server within a communication 
30 network. 

This data isolation technique may in software and data maintenance, back up and 
recovery in an external computer system wittiin a communication network. 

35 • The structure of a computer network consists of a host and a remote computer system 
connected by internet, lAU, WAN, Intemet, Intranet, and so fortti. A remote computer 
system may use its remote access management routine [remote version] to access 
and control the host computer system with a remote access management routine [host 
version]. 
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There are two ways a host computer system can be connected to the Internet The 
firat Is a direct connection of the host computer system to the Internet, as shown In 
Figure 23. The second is a host computer system within a LAN or the like and which 
Is in turn connected to Internet, as shown In Figure 24. 

Figure 23 shows the situation where the host computer systems are direcliy 
connected to Internet. The host computer systems are typically Individuals or smafl 
business useis who use dial up modems, or xDSU to connect to the Internet In 
general, the IP address of the host computer systems is dynamic. 

Upon being connected to the Internet the host computer system will send Hs assigned - 
IP address and remote access policy to the name server and security server, 
respectively, it is only after the determination of the IP address and access pdky of 
the host computer system that the remote computer system is able to be oonnecfed to 
host computer system. 

It also shows that the remote computer system can be connected to Internet directly, 
or within a LAN, to the Internet 

Rgure 24 shows the host computer system within a lAH. As the host computer 
system does not have a WAN IP address, there is a gateway server in the LAN. The 
gateway senrer has a static IP address. Hence, the remote computer system can 
connect direcHy to the gateway server to access the name server and security server 
in the LAN. The gateway server will then establish the connection between the 
remote computer system and the host computer system. 

In the case when LAN is using a dynamic IP address to access the Internet the 
gateway server updates Its IP address and access policy with the external name 
server and security server respectively when it is connected to the internet After the 
remote computer system obtains the IP address and access policy of host gateway 
sewer, it vt^It then connect to ttie host computer system through the gateway server. 

For both Figures 23 and 24, a host back up server is configured and is accessibte by 
all remote computer systems connected to the network. The host back up server is fbr 
secondary back up and recovery. The host back up server can be a back up sen/er 
for host computer systems over the LAN. It can also be a host back up server fbr 
remote computer systems over the Internet Eveiy stend-alone remote computer 
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system will be assigned a second, logical, protected, hidden partition at the host back 
up server for secondary back up and recovery. 

A remote access management routine running on both the stand-alone remote 
S computer systems, and the host computer system, may be used. 

The data transfer between the stand-^lone remote computer systems, and the host 
back up sen/er, is preferably secured such as by encryption. Also, the data stored at 
the secondary protected hidden partition at the host back up server may be protected 
10 by encryption. It is preferably onJy accessible by authorized users. 

By the use of a computer diagnostic utility tool together with remote access 
management routines with security access policy features provkied by the FFD, a date 
Isolation technique for host computer systems, can be provided to enable remote 
] 5 diagnostic and recovery 

In Rgure 25, the remote computer system obtains an IP address and a security 
access right policy of the host computer system from the name and security servers 
respectively to be able to connect to the host computer system. The request from the 

20 remote computer system uses a WAN/LAN to access the host computer system. 
Through NIC/Modem, socket layer and host services, it becomes a host computer 
system request At the same time, the graphics device hook routine of the host 
computer system will transmit the screen display of the host computer system to the 
remote computer system for display. A user Interfiace may be provided on the host 

25 computer system for the user to configure a security access policy. Under this policy, 
the FFD will protect the host computer system from file access by the remote 
computer system. 

For security and privacy of ttie host computer system, the security access policy may 
30 include: 

1) no right of access to the remote computer system to delete, modify or explore 
date files of the host computer. For example, all the "Office" document files 
may be hidden from the remote computer system; 

2) to hide the personalized Infomiation of the host computer from the remote 
35 computer system. For example, email acoounte, MSN account, Window user 

name, and so forth, maybe hidden; and 

3) to prevent business document files firom access by the remote computer 
system. 
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As Shown in Figure 26, and mentioned earlier at pages 8 to 11, at least four different 
meOiods are able to be used to determine the dynamic data files to be isolated for 
protection. The resultant table is used by the FFD to Identify the protected dynamic 
data files for access, and redirecting of data to the hidden partition, for execution. It 
S also enables the FFD to selectively accept or reject access of files under isolation for 
protection. This capabirrty can be used by host computer system for control of file 
access by the remote computer system. Furthermore, there are additional methods 
such as those listed in Tables 9 and 10 that are able to be used for host computer 
system protection. 

10 

(e) Analysis and protection of the system. 



Type 


Definition 


Characteristtc 


Regisby 


Critical data to a 
normal operating 

system. 


To reject or limit the access of host computer 
system by the remote computer system. 


User Account 
Management 


The registered user 
license number and 

password. 


To reject to limit the access of the user 
account management in the host computer 
system by the remote computer system so as 
to prevent any changes or modification. 


Host security 
access policy 


To determine the 
security access policy 
of host computer 
system. 


To reject or limit any modification or changes 
to the host computer system by the remote 
computer system so as to prevent any security 
leaked of the s^^m through Internet. 



Table 9 

15 

These are some of the basic types of system files to be protected from access by the 
remote computer system Under different operating systems different system files may 
1)6 protected. 

20 (f) Through analysis and protection of software routine 

The FFD is able to analyze the instelled softv/are application and assist the host 
computer system user to detemnine a sofhrare security access policy. As a result, it Is 
able to control the access to, and execution of, the host computer system software 
25 application by the remote computer system user. For example, the FFD can reject the 
execution of instructions to Format, Fdisk, Delete, and so forth invoked by the remote 
computer system tiiat may damage Vne host computer system. 

Witii this, and as listed in Table 10, a set of file secunty access policy for a host 
30 computer system is defined for remote management over the computer network. 
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File 


Read 


Can reject the read operation invoked by remote computer. 
Only selectively enable read operations of certain file or files to 

remote cntn miter 




Write 


Can reject the write operation invoked by remote computer. 
Only selectively enables write operation of certain file or files to 




Modify 


Can reject the modify operation invoked by remote computer. 
Only selectively enables modify operation of certain file or files 
lu remoie compuier* 




Rename 


Can reject the rename operation invoked by remote computer. 
Only selectively enables rename operation of certain file or files 
w icinoie couipuicr. 




Move 


Can reject the move operation invoked by remote computer. 
Only selectively enables move operation of certain file or files to 
remoiG computer. 




Delete 


Can reject the delete operation invoked by remote computer. 
Only selectively enables delete operation of certain file or files to 
remote computer. 




cxpioier 


^an nxae tiies or duectoiy folders from remote computer. 
Only selectively exposes certain file, files or directory folders to 
remote computer. 


Routine 


Ron 


Can reject the execution of software invoked by remote computer. 

Onlv selectivelv enables evemittnti o'Pr>.M4ai«t cA-IWmiaM MaS^tk 

file to remote computer. 




Install 


Can reject tfie installation of software irrvoked by remote 
computer. 

Only selectively enables the installation of software to remote 
computer. 




Uninstall 


Can reject the un-installation of software invoked by remote 
computer. 

Only selectively enables the un-installation of software to remote 
computer. 



Table 10 



5 Figure 26 shows the building block of the FFD for the control and management of a 
remote computer system. Before the remote computer system Is connected to the 
host computer system, the host computer system user may need to preset the security 
access policy as show in the above teble. 



10 



The FFD has three process routines for remote access: 

1) the FFD Intercepts the request from the remote computer system. For example, 
the explore, read/Write/editftlelete/move/execute instmctions; 
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2) after the FFD Intercept of the remote computer system request, the FFD obtains 
. the attribute of the requested data files for access, and checks with the security 

access policy; 

3) the FFD will follow the security access policy and make one of the fbllowlng three 
5 options: 

(a) reject the request; 

(b) modify the request, and 

(c) pass the request It will then pass the modified request to the main operating 
system for completion of the execution. 

10 

Some of the guidelines for setting the security access policy may be: 

1) to selectively enable the remote computer system to view or execute some of the 

operating system, and/or selected software application, and/or their configuration 

and/or data fifes in the hidden partition; and 
15 2) to selectively enable the remote computer system user to read, modify and write 

some of the operating system, and/or selected software application, and/or their 

configuration and/or date fifes In the hklden partition. 

In additional, tlie following standard host computer system access controls may be 
20 provided by the remote access management routine: 

1) to enable the authorized remote computer system user to access the host 
computer system by proper authenticatton procedures Including passwoid control; 

2) to protect the software application programs, their configuration and/or date files In 
25 the host computer system from the authorized remote user, and 

3) to protect and hide the hidden partition of the host computer system from the 
authorized remote computer user. 

In this way privacy fbr a computer system connected on a network may be enabled to 
30 allow remote diagnosis, operation and recovery, if required. This may be by a remote 
computer system. By use of the hidden partition the computer system user date files 
in the protected hidden partition are not exposed to the remote operator. 

As mentioned earlier, it is posslbte to restore the operating system with up-to-date 
35 dynamic date files even the primary operating system Is damaged. This is possible as 
the recovery system is operated under another operating system. With a built-in 
communication module, remote access management and security access policy, the 
recovery system Is like the primary operating system. As a result it is possible to 
provide a secure way for a remote computer system to remotely diagnosis, operate 
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and recover the host computer system using the back up stored in the hidden partltton 
of the host computer system. 

The present invention also extends to a computer usable medium comprising a 
5 computer program code that is configured to cause a processor to execute one or 
more functions described above. 

Whilst there has been described in the foregoing description preferred embodiments 
of the present invention, it will be understood by those skilled in the technology that 
1 0 many variations or modifications in details of design, construction, or operation may be 
made without departing from the present Invention. 

The present invention extends to all futures disclosed both individually, and In all 
possible permutations and combinations. 
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The Claims 

1. A data Isolation system for software and data maintenance, back up and recovery 
for a computer wherein dynamic data files are Identified and passed Into a hidden 

5 partition on a hard disk of the computer, the passing being by one or more 
selected from the group consisting of. copying and redirection. 

2. A system as claimed In claim 2, wherein the group further includes filtering and 
access control. 

10 

3. A system as claimed In claim 1 or claim 2, wherein automatic back ups are made 
to the dynamic data files In the hidden partition whenever the dynamic data files 
are accessed and modified. 

15 4. A system as claimed in any one of claims 1 to 3, wherein the dynamic data files 
include the computer's operating environment so that the computer's operating 
environment can be restored from the dynamto data files In the hidden partition. 

6. A system as claimed in any one of claims 1 to 4, wherein the dynamic data files In 
20 the hidden partition include data up to the time of a teilure of the computer's 
system. 

6. A system as claimed in any one of claims 1 to 5. wherein compression is used for 
at least one file of the dynamic data files in the hktden partition. 

25 

7. A system as claimed in any one of claims 1 to 6, wherein encryption is used for at 
least one of the dynamic data files in the hidden partition. 

8. A system as claimed in any one of claims 1 to 7, wherein at least one of the 
30 hidden partition and its content is neither manageable nor accessible by the 

computer's operating system; and the dynamic data files in the hidden partition 
are not accessible by any software application on the computer. 

9. A system as claimed in dalm 8, wherein prtor to copying ttie dynamic data files 
35 into ttie hidden partition, ail software installed on the computer, including a primary 

operating system for the computer, is segregated into at least one static routine 
and tiie dynamic data files, dynamic data files including system configuration files, 
and user data files. 



10. A system as clatmed in daim 9, wherein the segregation comprises 
categorization. 

1 1. A system as claimed In claim 9 or claim 10, wherein all data sent from the pnmary 
5 operating system to the dynamic data files and all data sent from the dynamic data 

files to the primary operating system is passed to the dynamic data files in the 
hidden partition. 

12. A system as claimed In any one of claims 1 to 11, wherein the dynamic data files 
10 In the hidden partition are continuously updated. 

13. A system as claimed in any one of claims 1 to 12, wherein on system recovery, a 
last back up system environment in the hidden partition, including the copied 
dynamic data files, is recovered. 

15 

14. A system as claimed in claim 13, wherein the dynamic data files in the hidden 
partftion include all data up to an Instant before the recovery process was invoked, 
and the system environment Includes the primary operating system and software. 

20 15. A system as claimed in any one of claims 1 to 14, wherein upon new software 
being instelled in the computer, the insteliation is delayed until a back up of the 
existing system environment to the hidden partition Is completed and, after 
oompletton of the back up, the Insteliation is resumed. 

25 16. A system as claimed In claim 15, wherein if system Instebiilty or failure is 
encountered after the insteliation or running of the new software, the computer 
system restores the previous operating environment from the back up. 

17. A system as claimed In any one of claims 1 to 16, wherein upon a new device 
30 driver being installed In the computer, the insteliation is delayed until a back up of 

the existing system environment to the hidden partition is completed and, after 
completion of the back up. the Installation is resumed and, if system instebiilty or 
failure Is encountered after the installation or running of the new device driver, the 
computer system restores the previous operating environment firom the back up. 

35 

18. A system as claimed in any one of claims 1 to 17, wherein software application 
and its dynamic data files are copied to the hidden partition as independent 
modules. 
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19. A system as clafmed In any one of dafms 1 to 18. wherein the dynamio data files 
in the hidden partition woric as active data files for an software application and are 
continuously updated. 

5 20. A system as daimed In claim 10 or any one of claims 11 to 18 when appended to 
claim 10, wherein the segregating or categorizing of the data files of Is by use of a 
data isolation technique that consists of one or more selected from the group 
consisting of: 

(a) automatic selection of commonly used software application of the 
10 operating system; 

(b) automatic selection of commonly used software application 

(c) selection of software application by a user of the computer; and 

(d) selection of files or file folders by the user 

15 21. A system as claimed in claim 20, wherein for (a), (b) and (c) all dynamic date files 
belonging to the software application will be automatically segregated and stored 
to the hidden partftfon. 

22. A system as claimed In claim 20, wherein for (d) the selected files or all the 
20 dynamic date files belonging to the selected file folders will be automatically 

segregated and stored to the hidden partition. 

23. A system as claimed in claim 1 1 or any one of dalms 12 to 22 when appended to 
claim 11, wherein an additional UO driver is placed between a file system I/O 

25 Interface and a disk driver for access control. Intercepting, filtering and re-directIng 
date for the dynamic date files In the hidden partition, the additional I/O driver 
using a secondary operating system. 

24. A system as claimed in claim 23. wherein the access control, intercepting, flltenng 
30 and re-direcflng is by the use of regulatory, matching, and fulfillment tebles. 

25. A system as claimed in claim 23 or claim 24, wherein the additional I/O driver is 
part of one or more selected from the group consisting oft the disk driver, the file 
system I/O interface, and the operating system. 

35 

26. A system as claimed In any one of claims 23 to 25, wherein the secondary 
operating system is different to the primary operating system. 



33 



27. A system as claimed In any one of claims 23 to 26, wherein back up and recovery 
use one of the primary operating system and the secondary operating system. 

28. A system as claimed in any one of claims 1 to 27. wherein the dynamic data files 
stored tn the hidden partition are protected. 

29. A system as claimed In any one of claims 1 to 28. wherein the dynamic data files 
stored In the hidden partition are used as active working files and are continuously 
updated. 

30. A system as claimed in claim 29. wherein a plurality of back-up copies of each 
dynamic data file In the hidden partition is made In the hidden partition using a 
first-ln-first-out sequence. 

31. A system as claimed In claim 30. wherein upon accessing and modifying an 
working data file, the plurality of backnips are updated according to a pre- 
assigned back-up schedule. 

32. A system for management of access to a host computer by a remote computer 
wherein access by the remote computer is in accordance with a software securi^ 
access policy in the host computer. 

33. A system as claimed In claim 32, wherein the software security access polk^ has 
a fite access right and control mechanism. 

34. A system as claimed in claim 33, wherein the file access right and control 
mechanism Is used to selectively provide protection to selected sofffcware 
application and their respective dynamic data files. 

35. A system as claimed In claim 33 or claim 34, wherein the file access nght and 
control mechanism of the host computer by the remote computer are controlled by 
the host computer and include: 

(a) selection of software application/programs; 

(b) selection of dynamic date files of the software application; 

(c) selection of configuration files; 

(d) selection of data file or folder; and 

(e) selection of the type of the operation to be perfomned by the remote 
computer. 



34 



36. A system as claimed In claim 35, wherein the selected file, or files belonging to the 
selected folder, are automatically given the access right while any others will be 
denied access. 

5 37. A system as claimed in claim 35 or claim 36, wherein the file access right and 
control mechanism of the host computer are pre-detemnlned by a category of the 
remote host computer and different remote computers are given different access 
rights for different usage. 

10 38. A system as claimed In claim 37, wherein all files including program, configuration 
and user data are automatlcaUy given the access right while all others are denied 
access. 

39. A system as claimed In any one of claims 34 to 38, wherein the host computer has 
15 an additional I/O driver placed between a file system I/O interface and a disk 

driver for access control, intercepting, filtering and re-dlrectlng data for the 
dynamic data files, the additional I/O driver using a secondary operating system. 

40. A system as claimed in claim 39, wherein the access control, intercepting, filtering 
20 and re-directing is by the use of regulatory, matching, and fulfillment tables. 

41. A system as claimed In claim 39 or claim 40. wherein the additional I/O driver Is 
part of one or more selected firom the group consisting of: the disk driver, the file 
system I/O Interface, and the primary operating system. 

25 

42. A system as claimed In any one of claims 39 to 41, wherein the secondary 
operating system Is different to the primary operating system. 

43. A system as claimed in any one of claims 39 to 42, wherein back up and recovery 
30 use one of the primary operating system and the secondary operating system. 

44. A system as claimed in any one of claims 39 to 43, wherein the remote access is 
through the secondary operating system. 

35 45. A system as claimed In claim 32 or any one of clalrns 33 to 44 when appended to 
claim 32, wherein the selected software application and their respective dynamic 
date flies are identified and are located in at least one partition of the primary 
operating system of the host computer. 
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46. A system as claimed In claim 32 or any one of claims 33 to 44 v/hen appended to 
claim 32, wherein dynamic data flies are identified and passed into a hidden 
partition on a hard disic of the host computer, the passing being by one or more 
selected from the group consisting of: coping and redirection. 

5 

47. A system as claimed in any one of claims 30 to 46. wherein the host computer 
using diagnostic utilities to allow remote technical support by the remote 
computer. 

10 48 A system for providing an external back up for at least one computer to at least 
one hidden partition of a centralized back up server, wherein dynamic data files of 
the at least one computer are Identified and passed Into the at least one hidden 
partition on a hard disk of the central back up server, the passing being by one or 
more selected from the group consisting of: coping and redirection. 

15 

49. A system as claimed in claim 46, wherein the at least one hkJden partition of the 
central back up server Is accessed using at least one selected from the group 
consisting of a: LAN, WAN, VPN, Intranet and Internet 

20 50. A system as claimed in claim 48 or claim 49, wherein critical applications and their 
dynamic date files are stored and protected in the at least one hidden partition of 
the central back up server by using encryption and are only able to be accessed 
by authorized users. 

25 51. A system as claimed in any one of claims 48 to 50, wherein the at least one 
computer has an additional I/O driver placed between a file system I/O Interface 
and a disk driver for access control, intercepting, filtering and re<llrectlng date for 
the dynamic date files, the addittonai I/O driver using a secondary operating 
system. 

30 

52. A system as claimed In claim 51, wherein the access control, intercepting, filtering 
and re-directing is by the use of regulatory, matching, and fulfillment tebles. 

53. A system as claimed In daim 51 or claim 52, wherein the additional I/O driver Is 
35 part of one or more selected from the group consisting oft the disk driver, the file 

system I/O interface, and the primary operating system. 
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64. A system as claimed In any one of claims 51 to 63, wherein the secondary 
operating system is different to a primary operating system of the at least one 
computer. 

5 55. A system as ctelmed in claim 64, wherein bacic up and recovery use one of the 
primary operating system and the secondary operating system. 

66. A system as claimed in any one of claims 61 to 66, wherein communication with 
the central back up server is through the secondary operating system. 

10 

67. A system as claimed In any one of claims 1 to 31 further Including a system for 
management of access to a host computer by a remote computer as claimed In 
any one of claims 32 to 47. 

15 58. A system as claimed in any one of claims 1 to 31 or claim 57. further including a 
system for providing an external back up as claimed in any one of claims 48 to 56. 

59. A system for management of access to a host computer by a remote computer as 
claimed in any one of claims 32 to 47 further including a system for providing an 

20 external back up as claimed in any one of claims 48 to 66. 

60. Computer usak)le medium comprising a computer program code that is configured 
to cause a process or to execute one or more functions to perfonn a system as 
claimed in any one of claims 1 to 69. 
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ABSTRACT 
Data Isolation System and Method 



A data isolation system for software and data maintenance, back up and recovery for 
a computer wherein dynamic data files are identified and redirected or copied Into a 

10 hidden partition on a hard disk of the computer. Automatic back ups are made to the 
dynamic data files in the hkiden partition whenever the dynamic data files are 
amended. The dynamic data files in the hkiden partition include the computer's 
operating environment so that the computer's operating environment can be restored 
from the dynamic data files in the hidden partition. The dynamic data files in the 

15 hidden partition Include data up to the time of a failure of the computer*s system. 
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